The purpose of this blog is to establish a dialogue and get your input on issues and topics important to CVE. Right-click and copy a URL to share a post.

Please use our LinkedIn page, or the CVE Request Web Form by selecting “Other” from the dropdown, to comment on the post below.

Refresher: When to Use the CVE Request Web Form

Comment on LinkedIn | Share this post

First introduced in August 2016, the online “CVE Request Web Form” is the main method for communicating with the CVE Program Root CNA. By using the web form, the CVE Program’s ability to receive, manage, track, and respond to user questions and CVE ID requests has significantly improved.

In this article, inspired by user questions, we will discuss when and how to use the CVE Request Web Form to best assist you.

Only Use the CVE Request Web Form to Contact the Program Root CNA

Each CVE Numbering Authority (CNA) has its own specific scope of coverage, and its own preferred way to be contacted. If you need to contact a CNA other than the Program Root CNA to request a CVE ID, or to ask a question, please use that specific CNA’s contact details as stated on the Request CVE IDs page.

The CVE Request Web Form is only used to contact the Program Root CNA.

When to Use the CVE Request Web Form

Use the web form to contact the Program Root CNA to do the following:

• Request a CVE ID
  
  Select this option to request a CVE ID(s) from the Program Root CNA only. The form includes a required information section for the type of vulnerability, product vendor name, and affected product name and version. There is also an optional information section to fill out that may assist us in processing your request.
  
  If you are unsure about a web form requirement, or need further clarification before starting the process, please continue to use the web form but select “Other” from the dropdown menu to ask us your question(s).
  
  
• Request a block of IDs (for CNAs only)
  
  Only current CNAs may use this selection to request blocks of CVE IDs.
  
  
• Notify CVE about a publication
  
  Select this option to notify the CVE Team that an advisory has been published. Required information includes providing a URL to the public advisory about the vulnerability, listing the CVE ID(s) that are included in the advisory, and any additional information and CVE ID Description updates.
  
  
• Request an update to an existing CVE Entry
  
  Select this option to provide updates for published CVE Entries. Required information includes the type of update (duplicate, rejection, split/merge, update description, update references, or other), the CVE ID of the CVE Entry to be updated, and a description of what change is needed. Optional information includes providing links to references that validate the need for an update.
  
  
• Request information on the CVE Numbering Authority (CNA) Program
  
  After reviewing the CVE Overview for Prospective CNAs and How to Become a CNA, select this option to find out more or to start the process of becoming a CNA.
  
  
• Other
  
  Select to ask questions about CVE IDs, CVE Entries, the ID request process, the web form, or to request information on topics not covered above.
  
  

If you need additional information regarding how use the web form, the form itself includes online help during each step of the process. Simply click the round, blue information button containing the letter "i". Please also see our Web Form FAQs.

What Happens Once a Request Is Submitted

Once you have submitted your request, you will receive an email message confirming receipt of your request and a reference number. Please add cve-request@mitre.org and cve@mitre.org as safe senders in your email client before completing the web form.

Any additional communications related to this request will be done through email using the same subject line as the confirmation email.

Did We Point You in the Right Direction?

To discuss this post with us, please use our LinkedIn page or the CVE Request Web Form by selecting “Other” from the dropdown.

We look forward to hearing from you!